Cisco TelePresence IX5000 8.0.3 stores a private key associated with an X.509 certificate under the web root with insufficient access control, which allows remote attackers to obtain cleartext versions of HTTPS traffic or spoof devices via a direct request to the certificate directory, aka Bug ID CSCuu63501.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2015-09-05T01:00:00
Updated: 2024-08-06T07:15:13.270Z
Reserved: 2015-08-17T00:00:00
Link: CVE-2015-6276
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2015-09-05T02:59:05.367
Modified: 2016-12-29T13:16:06.357
Link: CVE-2015-6276
Redhat
No data.